CSRF attack

Cross-Site Request Forgery (CSRF) forces users to execute
unwanted actions on a web application for which they are authenticated.
For example, sending a URL using an email or chat to a privileged
user. Clicking the URL link forces the user to do an action of the
attacker's choice.